Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/06/05 8:29 a.m.10 views

CVE-2025-49007

A flaw was found in Rack. The Content-Disposition parsing component exhibits a denial of service vulnerability due to improper handling of specially crafted input, allowing a remote attacker to trigger a crash. This vulnerability is triggered by processing a malicious Content-Disposition header...

8.7CVSS6.8AI score0.00483EPSS
Exploits0References6
NVD
NVD
added 2025/06/04 11:15 p.m.17 views

CVE-2025-49007

Rack is a modular Ruby web server interface. Starting in version 3.1.0 and prior to version 3.1.16, there is a denial of service vulnerability in the Content-Disposition parsing component of Rack. This is very similar to the previous security issue CVE-2022-44571. Carefully crafted input can caus...

8.7CVSS0.00483EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/06/04 11:15 p.m.4 views

CVE-2025-49007

Rack is a modular Ruby web server interface. Starting in version 3.1.0 and prior to version 3.1.16, there is a denial of service vulnerability in the Content-Disposition parsing component of Rack. This is very similar to the previous security issue CVE-2022-44571. Carefully crafted input can caus...

8.7CVSS6.9AI score0.00483EPSS
Exploits0References4
Circl
Circl
added 2025/06/04 11:3 p.m.19 views

CVE-2025-49007

creationtimestamp| type| source ---|---|--- 2025-06-04 23:03:18+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqsw246e33j2 2025-06-07 19:58:28+00:00| seen| https://bsky.app/profile/andrewnez.mastodon.social.ap.brid.gy/post/3lr253dgeazj2...

8.7CVSS5.7AI score0.00483EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/04 10:42 p.m.7 views

CVE-2025-49007 ReDoS Vulnerability in Rack::Multipart handle_mime_head

Rack is a modular Ruby web server interface. Starting in version 3.1.0 and prior to version 3.1.16, there is a denial of service vulnerability in the Content-Disposition parsing component of Rack. This is very similar to the previous security issue CVE-2022-44571. Carefully crafted input can caus...

8.7CVSS6.5AI score0.00483EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/04 10:42 p.m.15 views

CVE-2025-49007 ReDoS Vulnerability in Rack::Multipart handle_mime_head

Rack is a modular Ruby web server interface. Starting in version 3.1.0 and prior to version 3.1.16, there is a denial of service vulnerability in the Content-Disposition parsing component of Rack. This is very similar to the previous security issue CVE-2022-44571. Carefully crafted input can caus...

8.7CVSS0.00483EPSS
Exploits0References3
Rows per page
Query Builder